Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/HXDw--ij7AhNRdz4sJpGm_2YbAI.roa
File: HXDw--ij7AhNRdz4sJpGm_2YbAI.roa (raw, json)
Hash identifier: yu/EbZRG9suWIM91UhRC87Vm2cMzg1zezY4UUohxvSo=
Subject key identifier: 1D:70:F0:FB:E8:A3:EC:08:4D:45:DC:F8:B0:9A:46:9B:FD:98:6C:02
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0184DE221920ACDDE48D5431D16B291701EF
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/HXDw--ij7AhNRdz4sJpGm_2YbAI.roa
Signing time: Sun 04 Dec 2022 17:14:47 +0000
ROA not before: Sun 04 Dec 2022 17:14:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:de:22:19:20:ac:dd:e4:8d:54:31:d1:6b:29:17:01:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Dec 4 17:14:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1d70f0fbe8a3ec084d45dcf8b09a469bfd986c02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:96:cd:ca:cc:cf:ab:67:26:2e:8f:3a:62:2a:
d1:40:ef:4b:8a:2d:6d:b2:f3:86:e3:64:3b:96:f1:
52:75:35:53:6b:2b:50:09:b7:1b:1a:6a:3c:04:62:
51:f1:33:d7:19:26:71:15:8e:d7:21:de:cb:8f:07:
8b:b2:04:a9:5f:38:83:59:33:71:9c:ff:6a:ef:5a:
d0:bf:70:de:d6:7f:f8:4e:8a:7e:7d:b9:87:95:2f:
9b:49:c9:27:12:b6:63:2c:6e:89:40:18:80:ff:0e:
02:e6:86:f9:f6:9a:81:83:d9:9a:4a:f1:88:cd:61:
67:76:2a:0b:87:64:72:85:66:e3:60:22:96:0d:3e:
8f:20:b3:01:02:fa:da:ab:67:aa:b8:61:f6:81:35:
fa:0f:05:b3:3a:09:98:76:f7:48:84:ec:38:75:64:
08:22:39:20:e6:dc:8b:c3:14:77:fc:b8:1e:0e:79:
c2:1e:a6:72:94:87:42:fc:61:7b:bc:64:c6:6a:85:
c8:6c:9b:e6:37:c2:14:88:15:3a:ed:8a:b7:20:06:
63:df:08:13:61:3e:ad:83:8a:fc:8f:f6:db:41:d9:
fc:05:3c:59:62:fd:1a:a3:b2:c3:d7:0d:79:99:3f:
f4:b2:e9:af:3a:9a:c2:dc:a6:1b:3e:8c:83:df:02:
e0:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:70:F0:FB:E8:A3:EC:08:4D:45:DC:F8:B0:9A:46:9B:FD:98:6C:02
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/HXDw--ij7AhNRdz4sJpGm_2YbAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
98:45:12:d8:b8:12:b1:66:da:7b:8d:dd:4f:80:73:bd:21:78:
af:b8:75:cc:04:cb:35:b9:a9:77:dc:0b:d0:6c:d4:3a:dd:cf:
31:97:27:7e:4a:b4:4b:f3:a9:76:bb:3f:8c:5a:97:ad:ee:ec:
6b:fa:bd:e3:bf:32:ad:cf:11:81:58:95:45:54:4c:83:0f:6a:
cf:ed:df:47:76:ce:56:cc:8b:53:ad:8d:68:70:4b:2f:5d:a3:
93:0d:8d:e2:03:3c:53:e3:d5:ec:0d:c0:f7:b4:d3:51:8e:a6:
02:da:ae:c9:23:a7:1c:be:46:c5:8f:65:0c:4c:33:c1:0e:69:
f5:d2:7c:66:fb:f0:fc:6d:c9:b6:8d:c2:45:19:25:4c:66:d5:
d1:fb:ce:9c:1f:79:19:34:c9:23:e1:eb:3e:5b:5d:1d:c8:3f:
4a:ac:fc:23:cd:72:d5:b1:a4:f5:22:4f:cf:fb:ca:1f:7d:35:
a5:7b:c7:f4:40:5b:26:26:d0:6c:21:89:a3:b9:e5:d6:29:b8:
4d:7e:f9:44:82:12:21:3f:82:22:7e:5d:be:b9:a5:f1:ef:f0:
15:4b:2e:2f:17:5e:51:5b:1e:72:72:eb:0e:4c:11:1e:e5:fc:
20:93:08:b1:aa:4f:0c:a6:12:cc:ec:25:5e:85:da:45:d9:37:
a9:62:0b:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 09:55:37 2025 by rpki-client